IA/Security Specialist III

Position Summary

Join a company at the forefront of cybersecurity and IT modernization for defense projects. Venatore is hiring an IA/Security Specialist III to ensure that the FTEL SCIF Network MLS implementation meets the highest security standards and obtains the necessary accreditation to operate. In this senior information assurance role, you will be responsible for all cybersecurity compliance and documentation efforts for a complex multi-level security network being installed at Edwards AFB’s FTEL facility. You will work on-site in the SCIF alongside the engineering team, focusing on risk assessment, security documentation (RMF package development), and verification of security controls in a Top Secret network environment. This is a short-term, project-based position on-site at Edwards AFB requiring an active TS/SCI clearance.

Key Responsibilities

• Ensure security compliance of the MLS network solution, conducting thorough security assessments and documenting findings to verify that all systems and configurations meet DoD and Air Force cybersecurity requirements.
• Develop and maintain critical security documentation, including the System Security Plan (SSP) and Security Controls Traceability Matrix (SCTM) for the new system, using government-provided templates and aligning with the system’s design.
• Prepare and update the Site-Based Security Assessment (SBSA) documentation and test procedures to reflect the implemented Trusted Thin Client environment, detailing how security controls are tested and validated.
• Perform Security Technical Implementation Guide (STIG) compliance checks and technical security evaluations on all deployed components (servers, network devices, thin clients), and work with engineers to remediate any configuration vulnerabilities or deviations from required baselines.
• Conduct risk assessments and vulnerability analysis for the system; identify any security gaps or weaknesses and develop appropriate mitigation strategies. Track these in a Plan of Action and Milestones (POA&M) to ensure all issues are addressed in a timely manner.
• Compile and organize a comprehensive Body of Evidence (BoE) for the system’s Assessment and Authorization (A&A) package (Authority to Operate). This includes assembling hardware/software inventories, network diagrams, STIG checklists, Ports-Prototols-and-Services Management (PPSM) reports, and Letters of Volatility/Sanitization, among other artifacts.
• Work closely with the Government Designated Approving Authority / Authorizing Official’s team to facilitate reviews of the security package, and make any required updates to achieve an interim authority to test and ultimately a full Authority to Operate (ATO) for the system.
• Provide cybersecurity guidance to the project team throughout the implementation – for example, advising on secure configuration of systems, interpreting NSA “Raise the Bar” guidelines for multi-level networks, and ensuring adherence to all SCIF security policies during on-site work.
• Support security-focused testing and verification events, such as controlled penetration tests or scanning activities, and ensure that all security requirements have been met prior to system go-live.

Qualifications

• Active TS/SCI clearance is mandatory (with current SCI indoctrination).
• Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or a related field. (Advanced training or certifications in cybersecurity are a plus.)
• Minimum 7 years of experience in information assurance or cybersecurity roles, with substantial experience securing and accrediting DoD systems/networks. Experience should include hands-on work with Risk Management Framework (RMF) or DIACAP processes and developing A&A/C&A documentation for accreditation.
• Expertise in creating and managing security documents such as SSPs, SCTMs, POA&Ms, and associated security test plans. Familiarity with Air Force and NSA “Raise the Bar” cross-domain security requirements is highly desired.
• Strong knowledge of DoD security configuration standards – must have experience applying DISA STIGs and conducting system/network vulnerability assessments. Able to use security scanning tools and interpret results to guide remediation.
• DoD 8570 compliance: Security+ CE (or higher certification such as CISSP or CASP) is required. A professional certification like CISSP, CISM, or GSLC is highly valued and may be required for certain IA roles at this level.
• Meticulous attention to detail and organizational skills – capable of maintaining detailed records and managing multiple security documents and checklists in parallel.
• Strong communication skills, both written and verbal, to coordinate with engineering team members and clearly articulate security requirements and findings to stakeholders. Must be able to brief security posture and risk to leadership as needed.
• Ability to work in a highly secure environment and uphold the utmost integrity and discretion. Previous experience working in a SCIF or with TS/SCI systems is preferred.